Mimic Ransomware Uses ‘Everything’ API to Target English and Russian Windows Users

cropped-fav512-1-270x270.pngMimic Ransomware Uses âEverythingâ API to Target English and Russian Windows Users>
Tech Latest – Gagan Deep Singh
Security researchers at Trend Micro are back with the discovery of a new ransomware which the researchers named Mimic, that takes advantage of APIs of the Everything file search tool for windows to search for files that are targeted for encryption.

The security researchers at Trend Micro found similarities between some of the codes of Mimic and Condi ransomware, whose source code got leaked by a Ukrainian researcher back in March 2022.

The ransomware is believed to be backed by Russian-based cyber criminals who use the pseudonym of Wizard Spider. The Russian group performs phishing attacks to install TrickBot & Bazarloader malware to get Remote access to the infected device.

Mimic is flexible ransomware that supports the command-line arguments to narrow file targeting. Also, it can use multiple processor threads to accelerate the data encryption process.
Link: https://tech-latest.com/mimic-ransomware-uses-everything-api-to-target-windows-users/


Categories:

Tags: